Académique Documents
Professionnel Documents
Culture Documents
DATASHEET
Whats Inside
2 Drive Efficiencies with a
Get Expert Service to Protect Web
Comprehensive Web
Application Firewall Service
Applications and Achieve Compliance
2 Receive Expert Policy Building
and Monitoring Organizations that move application workloads to the cloud face challenges protecting
enterprise data. As security attacks across traditional and cloud environments become
3 Hybrid Policy Management more sophisticated, in-house security teams often struggle to stay up to date on the
and Deployment latest attacks and protection measures, and deliver consistent policies and compliance
3 Defend with Proven Security across environments. A lack of consistency can result in security vulnerabilities, higher
Effectiveness expenses, and a slower response to threats and compliance issues.
3 Comprehensive Attack F5 Silverline Web Application Firewall is a cloud-based service with 24x7x365
Protection support from highly specialized security experts. It helps organizations protect web
4 Built-In Compliance and applications and data, and enable compliance with industry security standards, such as
Reporting Capabilities PCI DSS. Silverline Web Application Firewall is available as a fully managed service for
comprehensive and customized app protection, or as an express self-service for rapid
4 Gain Attack Insights and deployment of expertly maintained policies.
Intelligence
5 Comprehensive Managed
Managed service key benefits
Service App Protection
Ensure application security and Defend with proven security effectiveness
6 Streamlined Self-Service App compliance Leverage security efficacy with technology built
Protection Get comprehensive protection from advanced on the NSS Labsrecommended F5 BIG-IP
6 The Silverline Cloud-Based layer 7 attacks, OWASP Top Ten application Application Security Manager (ASM), based
security risks, and zero-day attacksand enable on tests that demonstrate 99.89 percent overall
Platform
compliance with key regulatory mandates. security effectiveness.
7 Flexible Licensing
Get 24x7x365 expert service Drive operational and cost efficiencies
7 Add-On Threat Intelligence Receive 24x7x365 access to web application Remove the complexity of WAF management,
Services firewall (WAF) experts who build, proactively increase the speed to deploy new policies, and
monitor, and fine-tune WAF policies against decrease operational expenses.
7 F5 Security Operations Center known and emerging threats.
Gain attack insights and intelligence
7 More Information Deploy flexibly across hybrid Access reports through the cloud-based customer
environments portal and incorporate external intelligence for
Ensure consistent web application security, securing apps against identified threats.
availability, and user experiences across
traditional and cloud data centers.
DATASHEET
Silverline Web Application Firewall
F5 Silverline
Platform Apps SaaS
User
L7 Protection:
Geolocation attack protection, DDoS, SQL injection,
OWASP Top Ten attacks, zero-day threats, AJAX
applications, JSON payloads
Figure 1: The Silverline Web Application Firewall service protects web applications no matter where
the app is hostedin the private cloud, the public cloud, or a physical data center.
Unlike other WAF service vendors that provide self-service capabilities and expect the
customers to handle most of the configurations and policy management, the F5 SOC experts
are available 24 hours a day, 7 days a week, 365 days a year. These experts build, monitor,
and fine-tune policies to protect web applications and data from new and emerging threats.
2
DATASHEET
Silverline Web Application Firewall
SOC experts with the managed service are available to work with customers to rapidly
deploy policies and create more advanced policies based on heuristic learning and specific
application-security needs. Policies can be created to work in conjunction with existing
BIG-IP ASM configurations.
The managed service SOC experts work to reduce false positives by staging and testing
policies in a live environment using attack signatures, file types, URLs, and other parameters.
These tests determine if changes are needed before a policy is enforced, without reducing
current protection levels. Policies are redesigned and retested until they are ready for
live implementation.
3
DATASHEET
Silverline Web Application Firewall
Figure 2: The Silverline customer web portal provides immediate attack details and analysis.
The ability to respond to frequent changes in attack methods is a key component of web
application security. By integrating with third-party products, the Silverline Web Application
Firewall managed service provides a dynamic and adaptable security solution. Data can be
uploaded from WhiteHat Sentinel, IBM Rational AppScan, HP WebInspect, and QualysGuard
Web Application Scanning products. These products offer vulnerability assessment, auditing,
and real-time database reporting to provide security breach reviews, attack prevention,
and compliance.
4
DATASHEET
Silverline Web Application Firewall
However, vulnerability management can drain your security team productivity. Scans take
too long, vulnerabilities detected are difficult to prioritize, and new threat signatures are
often not updated. This wont be an issue when you gain continuous visibility with
Silverline expertise. The managed service SOC experts enable VA/DAST app management
by scanning your apps, identifying vulnerabilities, and configuring policies for patching that
blocks web app attacks. Your apps are protected by SOC experts who review the scans
to implement the best protection profile. Youll receive notification of changes,
reporting, and analytics.
5
DATASHEET
Silverline Web Application Firewall
OWASP attack protections (e.g., XSS, CSRF, PCI-DSS and RFC compliance
SQL injection, encoding) Self-service, portal-based policy deployment
Automated bot protection 24x7 email and phone portal support
Application and parameter/HPP tampering Per fully qualified domain name (FQDN) policies
protection one WAF policy for each FQDN
Expertly maintained app attack policies 5 FQDNs and 50 Mbps bandwidth initiallyscale
IP whitelisting/blacklisting on demand for greater coverage
SSL offload, certificates/keys, and stats Load balancing apps
Violation summaries and web traffic stats Provisioning via the customer portal
Deploy rapidly across cloud and on-premises Defend attacks with robust effectiveness
environments Gain attack insights and intelligence
Ensure app security anywhere Drive efficiencies and reduce complexity
Figure 3. Easily configure domains, choose application stacks, and load SSL certificates for rapid app
protection with the Silverline Web Application Firewall express service option.
6
7
DATASHEET
Silverline Web Application Firewall
Flexible Licensing
More Information
To learn more about Silverline Web Application Firewall, visit f5.com to find these and
other resources.
Silverline
Silverline Web Application Firewall
Silverline platform
Silverline DDoS Protection
Reports
Gartner Web Application Firewall Magic Quadrant 2016
2016 NSS Web Application Firewall Product Analysis for BIG-IP ASM
Awards
Best Web App Solution
F5 Networks, Inc. 401 Elliott Avenue West, Seattle, WA 98119 888-882-4447 f5.com
2016 F5 Networks, Inc. All rights reserved. F5, F5 Networks, and the F5 logo are trademarks of F5 Networks, Inc. in the U.S. and in certain other countries. Other F5 trademarks are identified at f5.com.
Any other products, services, or company names referenced herein may be trademarks of their respective owners with no endorsement or affiliation, express or implied, claimed by F5. DC1216 | DS-SILVERLINE-WAF-114880188